CVE-2019-19963

Published: Dec 24, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in wolfSSL before 4.3.0 in a non-default configuration where DSA is enabled. DSA signing uses the BEEA algorithm during modular inversion of the nonce, leading to a side-channel attack against the nonce.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/wolfSSL/wolfssl/releases/tag/v4.3.0-stable

x_refsource_MISC

https://github.com/wolfSSL/wolfssl/commit/7e391f0fd57f2ef375b1174d752a56ce34b2b190

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-19963

Description

Affected Products

References